Okay, this is one of those days where I've learned that I don't know
nearly as much as I think I do. What the HELL is all of this traffic?
It goes away when I do "ifconfig bridge0 down." I am at a complete
loss and not even sure where to begin.

10-04-2007, 02:18 AM

unix

Re: Bridge0 gone mad!

[email]sealinux@gmail.com[/email] wrote:[color=blue]
> I am using OpenVPN on my four-legged firewall. The interfaces are:
>
> fxp0 - External interface with one "real" IP address and four
> world-readable aliases.
> fxp1 - Internal (client) interface, protected part of the network.
> sis0 - Private server interface. A protected file server is on this
> interface.
> sis1 - Public server interface. To become my public SMTP, HTTP, DNS,
> etc. servers.
>
> The contents of /etc/bridgename.bridge0 are:
>
> add fxp1
> add tun0
> up
>
> Trouble is, when I do this, my internal network is flooded to the point
> of being DoSed, as follows:
>
> tcpdump -nettvvi fxp1
>
> 1145779066.910019 0:c0:2:eb:f3:15 9:0:7:ff:ff:ff 001d 220: snap[/color]
[...][color=blue]
> Segmentation fault
>
> Okay, this is one of those days where I've learned that I don't know
> nearly as much as I think I do. What the HELL is all of this traffic?
> It goes away when I do "ifconfig bridge0 down." I am at a complete
> loss and not even sure where to begin.
>[/color]

Looks like you may have created a network loop.
Does it happen when nothing is connected at the tunnel end?
Misconfigured tunnel?

10-04-2007, 02:19 AM

unix

Re: Bridge0 gone mad!

I'm guessing that's what happened. After I did "ifconfig destroy
bridge0" and tried again, I didn't have the same problem.

Thanks for your help. I was just pretty freaked out by it. I've never
seen anything like it before or since.